Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/BD1xg-eg3cLONxsiTHicHLIlMOA.roa
File: BD1xg-eg3cLONxsiTHicHLIlMOA.roa (raw, json)
Hash identifier: BGy15CpSRTcuNtOWchkVPMwM0jxzXoOSk5fiuu+p+tM=
Subject key identifier: 04:3D:71:83:E7:A0:DD:C2:CE:37:1B:22:4C:78:9C:1C:B2:25:30:E0
Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Certificate serial: 0A4D
Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/BD1xg-eg3cLONxsiTHicHLIlMOA.roa
Signing time: Thu 15 Sep 2022 02:37:48 +0000
ROA not before: Thu 15 Sep 2022 02:37:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131600
IP address blocks: 2403:a3c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2637 (0xa4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Validity
Not Before: Sep 15 02:37:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=043D7183E7A0DDC2CE371B224C789C1CB22530E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:73:7e:75:b7:55:80:c9:9b:bf:8b:53:59:da:
75:82:46:75:e8:23:9d:18:4f:3d:bd:1a:fd:b8:f0:
e2:f0:34:d0:26:78:8e:2d:88:2d:21:03:89:67:36:
85:10:a9:01:25:77:eb:c5:3d:dd:6a:71:8c:d0:c1:
59:f3:9f:e5:01:dd:5d:fa:cf:28:16:9c:22:72:ad:
1f:fd:d3:da:8d:98:fe:92:da:ba:bd:b1:5c:3c:89:
fe:1c:d6:b3:bf:ae:68:05:34:0f:cb:26:41:a7:4c:
d7:6b:99:c7:c8:08:7a:2a:60:a0:a7:65:5d:a8:7d:
36:33:07:da:a0:0d:fd:4b:a5:23:53:ad:1f:54:28:
c6:1b:54:cc:e7:ca:9a:ea:ce:b9:04:15:95:b8:6b:
8b:da:a7:6e:ae:bf:e3:5f:d2:4d:76:72:df:8b:e4:
c6:00:5a:3a:52:06:cb:6d:ab:df:62:6a:29:98:93:
74:84:e5:fc:a9:65:74:c9:44:fb:b6:c4:f0:0b:bf:
c0:a1:04:a7:79:59:88:9c:5b:df:1a:7f:36:d0:42:
a8:68:90:0c:21:60:19:95:a3:52:b1:fd:94:30:75:
c1:36:ca:d1:9d:de:02:f5:75:fa:29:6b:ce:19:2b:
86:bc:75:ef:73:09:58:04:1e:27:83:6b:d0:2b:92:
d9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:3D:71:83:E7:A0:DD:C2:CE:37:1B:22:4C:78:9C:1C:B2:25:30:E0
X509v3 Authority Key Identifier:
keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/BD1xg-eg3cLONxsiTHicHLIlMOA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:a3c0::/32
Signature Algorithm: sha256WithRSAEncryption
4a:b2:62:0b:67:fe:ce:af:96:91:24:6f:ff:74:95:95:bb:db:
ad:79:0d:28:e7:05:a4:e9:60:01:b2:4b:00:18:6b:6a:e3:7a:
77:84:a8:2d:08:ec:94:fe:f2:f2:7b:39:c4:38:13:e0:a3:e7:
e7:a0:21:be:cb:23:de:00:dd:c5:62:02:60:91:2f:af:71:3f:
ef:d7:7b:4c:bf:86:7c:84:14:19:fc:71:43:3f:64:b6:73:70:
ff:7d:25:33:f0:e9:ab:cb:53:3a:50:4b:38:87:49:22:58:6b:
b7:d2:51:54:ce:3e:7e:da:12:ab:1c:a0:6a:52:0d:d2:40:bf:
0c:09:11:30:1c:fc:1e:1a:be:af:9f:5d:09:9e:fd:47:e2:4a:
ca:46:36:19:d7:e7:9c:14:ce:ab:ca:87:f3:59:94:b5:f4:a3:
86:e7:b4:c7:85:ad:46:cf:9c:78:ef:1e:3c:4d:f3:b1:93:96:
67:29:e4:40:b9:59:fe:13:7b:5c:67:f4:5b:ae:7c:49:1e:d1:
ab:98:f4:c9:67:35:84:39:3c:11:9d:a5:d6:89:ef:3a:9b:b6:
7e:d3:f9:42:b3:4c:2d:65:f8:95:6d:d9:48:12:8a:d4:e5:4b:
c7:22:b0:ca:7f:4e:0c:de:d6:9b:d8:7d:93:8b:4f:cc:98:6c:
50:ea:a2:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:50:49 2025 by rpki-client